Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2013-2596

Integer overflow in the fb_mmap function in drivers/video/fbmem.c in the Linux kernel before 3.8.9, as used in a certain Motorola build of Android 4.1.2 and other products, allows local users to create a read-write memory mapping for the entirety of kernel memory, and consequently gain privileges, via crafted /dev/graphics/fb0 mmap2 system calls, as demonstrated by the Motochopper pwn program.

Security Impact Summary

This vulnerability carries a HIGH severity rating with a CVSS v3.1 score of 7.8, requiring local system access to exploit with relatively low complexity without requiring user interaction requiring only low-level privileges . The vulnerability impacts confidentiality (data exposure), integrity (unauthorized modifications), and availability (service disruption) for affected systems. Impacting 6 products from linux, from motorola, from motorola and 3 others, organizations running these solutions should prioritize assessment and patching.

Historical Context

Documented in 2013, this vulnerability occurred amid the cloud computing expansion era, where traditional network perimeter security models were being reevaluated. Organizations were transitioning from isolated infrastructure to interconnected systems, creating new attack surfaces that vulnerabilities like this could exploit.

Published

2013-04-13T02:59:46.627

Last Modified

2025-10-22T01:15:49.840

Status

Deferred

Source

[email protected]

Severity

CVSSv3.1: 7.8 (HIGH)

CVSSv2 Vector

AV:L/AC:M/Au:N/C:C/I:C/A:C

Access Vector: LOCAL
Access Complexity: MEDIUM
Authentication: NONE
Confidentiality Impact: COMPLETE
Integrity Impact: COMPLETE
Availability Impact: COMPLETE

Exploitability Score

3.4

Impact Score

10.0

Weaknesses

Type: Primary
CWE-190
Type: Secondary
CWE-190

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	linux	linux_kernel	< 3.0.75	Yes
Operating System	linux	linux_kernel	< 3.2.45	Yes
Operating System	linux	linux_kernel	< 3.4.42	Yes
Operating System	linux	linux_kernel	< 3.8.9	Yes
Operating System	motorola	android	4.1.2	Yes
Hardware	motorola	atrix_hd	-	No
Hardware	motorola	razr_hd	-	No
Hardware	motorola	razr_m	-	No
Hardware	qualcomm	msm8960	-	No

References

http://forum.xda-developers.com/showthread.php?t=2255491 Exploit ([email protected])
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=b4cbb197c7e7a68dbad0d491242e3ca67420c13e Broken Link ([email protected])
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=fc9bbca8f650e5f738af8806317c0a041a48ae4a Broken Link ([email protected])
http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10761 Third Party Advisory ([email protected])
http://marc.info/?l=linux-kernel&m=136616837923938&w=2 Mailing List, Patch, Third Party Advisory ([email protected])
http://rhn.redhat.com/errata/RHSA-2015-0695.html Third Party Advisory ([email protected])
http://rhn.redhat.com/errata/RHSA-2015-0782.html Third Party Advisory ([email protected])
http://rhn.redhat.com/errata/RHSA-2015-0803.html Third Party Advisory ([email protected])
http://www.droid-life.com/2013/04/09/root-method-released-for-droid-razr-hd-running-android-4-1-2-other-devices-too/ Exploit, Issue Tracking, Third Party Advisory ([email protected])
http://www.droidrzr.com/index.php/topic/15208-root-motochopper-yet-another-android-root-exploit/ Exploit, Issue Tracking ([email protected])
http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.8.9 Mailing List, Release Notes ([email protected])
http://www.mandriva.com/security/advisories?name=MDVSA-2013:176 Broken Link ([email protected])
http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html Patch, Third Party Advisory ([email protected])
http://www.securityfocus.com/bid/59264 Broken Link, Third Party Advisory, VDB Entry ([email protected])
https://github.com/torvalds/linux/commit/b4cbb197c7e7a68dbad0d491242e3ca67420c13e Patch ([email protected])
https://github.com/torvalds/linux/commit/fc9bbca8f650e5f738af8806317c0a041a48ae4a Exploit, Patch ([email protected])
http://forum.xda-developers.com/showthread.php?t=2255491 Exploit (af854a3a-2127-422b-91ae-364da2661108)
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=b4cbb197c7e7a68dbad0d491242e3ca67420c13e Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=fc9bbca8f650e5f738af8806317c0a041a48ae4a Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10761 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://marc.info/?l=linux-kernel&m=136616837923938&w=2 Mailing List, Patch, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://rhn.redhat.com/errata/RHSA-2015-0695.html Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://rhn.redhat.com/errata/RHSA-2015-0782.html Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://rhn.redhat.com/errata/RHSA-2015-0803.html Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.droid-life.com/2013/04/09/root-method-released-for-droid-razr-hd-running-android-4-1-2-other-devices-too/ Exploit, Issue Tracking, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.droidrzr.com/index.php/topic/15208-root-motochopper-yet-another-android-root-exploit/ Exploit, Issue Tracking (af854a3a-2127-422b-91ae-364da2661108)
http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.8.9 Mailing List, Release Notes (af854a3a-2127-422b-91ae-364da2661108)
http://www.mandriva.com/security/advisories?name=MDVSA-2013:176 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html Patch, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/59264 Broken Link, Third Party Advisory, VDB Entry (af854a3a-2127-422b-91ae-364da2661108)
https://github.com/torvalds/linux/commit/b4cbb197c7e7a68dbad0d491242e3ca67420c13e Patch (af854a3a-2127-422b-91ae-364da2661108)
https://github.com/torvalds/linux/commit/fc9bbca8f650e5f738af8806317c0a041a48ae4a Exploit, Patch (af854a3a-2127-422b-91ae-364da2661108)
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2013-2596 (134c704f-9b21-4f2e-91b3-4a467353bcc0)

How SecUtils Interprets This CVE

SecUtils normalizes and enriches National Vulnerability Database (NVD) records by standardizing vendor and product identifiers, aggregating vulnerability metadata from both NVD and MITRE sources, and providing structured context for security teams. For linux's affected products, we extract Common Platform Enumeration (CPE) data, Common Weakness Enumeration (CWE) classifications, CVSS severity metrics, and reference data to enable rapid vulnerability prioritization and asset correlation. This record contains no exploit code, proof-of-concept instructions, or attack methodologies—only defensive intelligence necessary for patch management, risk assessment, and security operations.